Linux worm targeting Internet-equipped devices

A new Linux worm targeting Linux computers can develop variants that can infect devices such as home routers, according to researchers. Symantec claims that the new worm, named Linux.Darlloz, “generates IP addresses randomly, accesses a specific path on the machine with a well-known ID and passwords, and sends HTTP POST requests, which exploit the vulnerability.” Symantec researcher Kaoru Hayashi continued to explain that “if the target is unpatched, it downloads the worm from a malicious server and starts searching for its next target.”

Should the worm be modified, it can become a threat to many consumer products. As Arstechnica.com’s report put it, “[People with] existing devices [should] update to the latest available version, change default passwords, and block incoming POST requests and other types of HTTP calls if at all possible.”